9- 1-04-; 2 : 35PM; PR I EST LAW OFFICES ;919 806 1 690 



AppL No. 09/533,396 

Amdr dated August 3 1 , 2004 

Reply to Office Action of March 29, 2004 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 
Listing of Claims: 

Please amend claims 1, 7 and 10 as follows: 

1 . (currently amended) A wired network for providing secure, authenticated access 
to wireless network clients, comprising: 

a server connected to a wireless network access point, and having access to the wired 
network, the server being operative to perform authentication for a wireless cli e nts client 
establishing a connection to the server through the wireless network access point, the server 
performing authentication bv examining authentication information transmitted from the client to 
the server and determining whether or not the authentication information identifies the wireless 
network client as authorized to gain access to the wired network, the server being operative to 
establish a connection session upon authentication of a client, the server being also operative to 
provide the client with a wired network address valid for the connection session upon 
authentication of the client, the server being further operative to encrypt communications with 
the wireless network access point, the server being further operative to provide a cryptographic 
key valid for the connection session to the client upon authentication of the client; and 

a user database accessible to the server for use in validating wireless clients. 
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2. (original) The wired network according to claim 1 and also including a 
network hub providing connections between the server and additional resources on the wired 
network. 

3. (original) The wired network according to claim 1 and also including a router 
providing connections between the server and additional resources on the wired network as well 
as a connection to an additional wired network. 

4. (original) The wired network according to claim 2 wherein the server is 
operative to provide addresses to clients through dynamic host control protocol. 

5. (original) The wired network according to claim 4 wherein the server is 
operative to communicate with a wireless network client using point to point tunneling protocol. 

6. (original) The wired network according to claim 5 wherein the server 
employs 128-bit cryptoprocessing to communicate with the wireless network client. 

7. (currently amended) A wireless network for providing secure authenticated 
communication between clients of the wireless network and a wired network, comprising: 

a wireless network access point operative to establish a connection with a server 
operating as a portal between the wireless network and a wired network, the wireless network 
access point being operative to conduct communications with the server in order to authenticate 
wireless network clients as authorized to access the wired network , the wireless network access 
point being further operative to receive authentication information from one or more wireless 
network clients and transfer the authentication information to the server in order to allow the 
server to examine the authentication information for a wireless network client and determine if 
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the information indicates that the wireless network client is authorized to access the wired 
network, the wireless network access point being further operative and to receive a 
cryptoprocessing key from the server upon authentication of a client and to transfer the key to 
each of th e cli e nts that client ; and 

a plurality of wireless network clients operative to establish connections with the wireless 
network access point, each client being operative to conduct encrypted communications with the 
server through the access point, to pass authentication information to the network access point in_ 
order to indicate to a server communicating with the wireless network and a wired network 
whether or not the wireless client is authorized to gain access to the wired network, each wireless 
network client being further operative to and receive address information and cryptoprocessing 
data from the network access point upon authentication by the server in order to allow 
communication with the wired network, each client being operative to conduct encrypted transfer 
of data to and from the wired network through the access point upon receiving the address and 
cryptoprocessing information. 

8. (original) The wireless network of claim 7 wherein the access point 
communicates with the server using point to point tunneling protocol. 

9. (original) Tlie wireless network of claim 8, also including a hub connecting 
the wireless network access point and a plurality of additional network access points, each 
additional network access point communicating with a plurality of additional wireless network 
clients, the wireless network access point and the additional network access points being 
operative to establish connections with the server through the network hub. 
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1 0. (currently amended) A method of secure communication between wireless 
network clients and a wired network, comprising the steps of: 

establishing a connection between a wireless network access point and an SB a security 
base f SB) server connected to the wired network- and a wirol e os network aooooo point ; 

establishing a connection between the SB server and a wireless network client 
communicating with the SB server through the wireless network access point; 

exchanging encryption keys between the SB server and the wireless network client; 

transmitting authentication information from the wireless network client to the SB server 
through the wireless network access point; 

performing authentication for the wireless network client bv examining the authentication 
information to determine if the wireless network client is authorized to gain access to the wired 
network ; 

if authentication fails, rejecting connection to the wired network; and 
if authentication passes, accepting connection to the wired network, providing a 
temporary wired network address and a unique session encryption key to the wireless network 
client and providing access to wired network resources in response to requests by the wireless 
network client. 

1 1 . (original) The method of claim 1 0 wherein the step of rejecting connection to 
the wired network is accompanied by a step of logging the rejection and wherein the step of 
accepting the connection is accompanied by a step of logging the acceptance. 
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12. (original) The method of claim 1 1 wherein the step of providing a temporary 
wired network address to the wireless network client includes using dynamic host control 
protocol to provide the address. 

1 3 (original) The method of claim 1 2 wherein communication between the 
wireless network client and the wired network server is performed using point to point tunneling 
protocol. 

14. (original) The method of claim 13 wherein the step of performing 
authentication for the wireless network client includes transferring authentication information 
between the wireless network client and the SB server and wherein the authentication 
information is encrypted using public key cryptography. 

15. (original) The method of claim 14 wherein the step of providing a unique 
session encryption key includes encrypting the unique session encryption key using public key 
cryptography. 



6 

PAGE 0/15 * RCVD AT 9/1/2 0O4 2:38:34 PM [Eastern Daylight Time] * SVR:USPTO-EFXRF-1>5 * DNIS:8729306 * CStD:919 806 1690 * DURATION (mnvss): 04-66 



